EP3198513A4 - Data verification using enclave attestation - Google Patents

Data verification using enclave attestation Download PDF

Info

Publication number
EP3198513A4
EP3198513A4 EP20150843584 EP15843584A EP3198513A4 EP 3198513 A4 EP3198513 A4 EP 3198513A4 EP 20150843584 EP20150843584 EP 20150843584 EP 15843584 A EP15843584 A EP 15843584A EP 3198513 A4 EP3198513 A4 EP 3198513A4
Authority
EP
Grant status
Application
Patent type
Prior art keywords
data verification
enclave attestation
enclave
attestation
verification
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Withdrawn
Application number
EP20150843584
Other languages
German (de)
French (fr)
Other versions
EP3198513A1 (en )
Inventor
Ned Smith
Esteban Gutierrez
Andrew WOODRUFF
Aditya Kapoor
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
McAfee LLC
Original Assignee
McAfee LLC
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/64Protecting data integrity, e.g. using checksums, certificates or signatures
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/51Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems at application loading time, e.g. accepting, rejecting, starting or inhibiting executable software based on integrity or source reliability
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/52Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/55Detecting local intrusion or implementing counter-measures
    • G06F21/56Computer malware detection or handling, e.g. anti-virus arrangements
    • G06F21/566Dynamic detection, i.e. detection performed at run-time, e.g. emulation, suspicious activities
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • G06F21/6281Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database at program execution time, where the protection is within the operating system
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/03Indexing scheme relating to G06F21/50, monitoring users, programs or devices to maintain the integrity of platforms
    • G06F2221/032Protect output to user by software means
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2115Third party
EP20150843584 2014-09-25 2015-08-25 Data verification using enclave attestation Withdrawn EP3198513A4 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
US14496056 US9715597B2 (en) 2014-09-25 2014-09-25 Data verification using enclave attestation
PCT/US2015/046798 WO2016048532A1 (en) 2014-09-25 2015-08-25 Data verification using enclave attestation

Publications (2)

Publication Number Publication Date
EP3198513A1 true EP3198513A1 (en) 2017-08-02
EP3198513A4 true true EP3198513A4 (en) 2018-04-11

Family

ID=55581754

Family Applications (1)

Application Number Title Priority Date Filing Date
EP20150843584 Withdrawn EP3198513A4 (en) 2014-09-25 2015-08-25 Data verification using enclave attestation

Country Status (5)

Country Link
US (2) US9715597B2 (en)
EP (1) EP3198513A4 (en)
CN (1) CN106796638A (en)
RU (1) RU2666273C2 (en)
WO (1) WO2016048532A1 (en)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9715597B2 (en) 2014-09-25 2017-07-25 Mcafee, Inc. Data verification using enclave attestation
US9813387B2 (en) * 2015-12-18 2017-11-07 General Electric Company Vehicle communication network security system and method

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6167523A (en) * 1997-05-05 2000-12-26 Intel Corporation Method and apparatus for forms data validation and processing control
US20050028084A1 (en) * 2003-07-28 2005-02-03 Alan Dziejma System and method for a form validation engine
US20130042295A1 (en) * 2011-08-10 2013-02-14 Charles C. Kelly Method and apparatus for providing a secure virtual environment on a mobile device

Family Cites Families (21)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US873860A (en) * 1905-07-07 1907-12-17 Horace F Holmes Phonograph.
US6073142A (en) 1997-06-23 2000-06-06 Park City Group Automated post office based rule analysis of e-mail messages and other data objects for controlled distribution in network environments
US5987610A (en) 1998-02-12 1999-11-16 Ameritech Corporation Computer virus screening methods and systems
US6460050B1 (en) 1999-12-22 2002-10-01 Mark Raymond Pace Distributed content identification system
US6901519B1 (en) 2000-06-22 2005-05-31 Infobahn, Inc. E-mail virus protection system and method
US20030065646A1 (en) * 2001-09-13 2003-04-03 Joseph Paul G. Database interface architecture with time-based load balancing in a real-time environment
RU2315349C1 (en) * 2006-07-12 2008-01-20 Михаил ТОПР Method for replicating information in distributed databases and system for realization thereof
US7712143B2 (en) 2006-09-27 2010-05-04 Blue Ridge Networks, Inc. Trusted enclave for a computer system
US8769702B2 (en) * 2008-04-16 2014-07-01 Micosoft Corporation Application reputation service
US8352741B2 (en) 2009-06-11 2013-01-08 Microsoft Corporation Discovery of secure network enclaves
US8627451B2 (en) * 2009-08-21 2014-01-07 Red Hat, Inc. Systems and methods for providing an isolated execution environment for accessing untrusted content
US9003517B2 (en) * 2009-10-28 2015-04-07 Microsoft Technology Licensing, Llc Isolation and presentation of untrusted data
US8478722B2 (en) * 2009-11-12 2013-07-02 Salesforce.Com, Inc. Enterprise level business information networking for changes in a database
US9087200B2 (en) 2009-12-22 2015-07-21 Intel Corporation Method and apparatus to provide secure application execution
US8832452B2 (en) 2010-12-22 2014-09-09 Intel Corporation System and method for implementing a trusted dynamic launch and trusted platform module (TPM) using secure enclaves
JP5874200B2 (en) * 2011-05-27 2016-03-02 ソニー株式会社 The information processing apparatus, an information processing method, and a program
US9083310B2 (en) * 2012-07-03 2015-07-14 Tdk Corporation Laminated structural type balun
US9430640B2 (en) * 2012-09-28 2016-08-30 Intel Corporation Cloud-assisted method and service for application security verification
RU2536663C2 (en) * 2012-12-25 2014-12-27 Закрытое акционерное общество "Лаборатория Касперского" System and method of protecting cloud infrastructure from illegal use
CN104969234B (en) 2013-03-06 2018-06-12 英特尔公司 Root of trust for measurement of virtual machines
US9715597B2 (en) 2014-09-25 2017-07-25 Mcafee, Inc. Data verification using enclave attestation

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6167523A (en) * 1997-05-05 2000-12-26 Intel Corporation Method and apparatus for forms data validation and processing control
US20050028084A1 (en) * 2003-07-28 2005-02-03 Alan Dziejma System and method for a form validation engine
US20130042295A1 (en) * 2011-08-10 2013-02-14 Charles C. Kelly Method and apparatus for providing a secure virtual environment on a mobile device

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
See also references of WO2016048532A1 *

Also Published As

Publication number Publication date Type
US20180018476A1 (en) 2018-01-18 application
CN106796638A (en) 2017-05-31 application
EP3198513A1 (en) 2017-08-02 application
RU2666273C2 (en) 2018-09-06 grant
US9715597B2 (en) 2017-07-25 grant
RU2017105861A (en) 2018-08-22 application
US20160092700A1 (en) 2016-03-31 application
RU2017105861A3 (en) 2018-08-22 application
WO2016048532A1 (en) 2016-03-31 application

Similar Documents

Publication Publication Date Title
GB2546459B (en) Data verification
GB2533292B (en) Differential data access

Legal Events

Date Code Title Description
AK Designated contracting states:

Kind code of ref document: A1

Designated state(s): AL AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HR HU IE IS IT LI LT LU LV MC MK MT NL NO PL PT RO RS SE SI SK SM TR

AV Request for validation of the european patent in

Extension state: MA

AX Request for extension of the european patent to

Extension state: BA ME

17P Request for examination filed

Effective date: 20170216

RAP1 Transfer of rights of an ep published application

Owner name: MCAFEE, LLC

DAX Request for extension of the european patent (to any country) deleted
DAV Request for validation of the european patent (in any country) deleted
A4 Despatch of supplementary search report

Effective date: 20180309

RIC1 Classification (correction)

Ipc: G06F 21/52 20130101AFI20180306BHEP

Ipc: G06F 21/56 20130101ALI20180306BHEP

Ipc: G06F 21/51 20130101ALI20180306BHEP

RIN1 Inventor (correction)

Inventor name: KAPOOR, ADITYA

Inventor name: GUTIERREZ, ESTEBAN

Inventor name: WOODRUFF, ANDREW

Inventor name: SMITH, NED

18W Withdrawn

Effective date: 20180828